[Freeipa-users] HBAC issues

Erinn Looney-Triggs erinn.looneytriggs at gmail.com
Thu Jan 5 20:48:20 UTC 2012


On 01/05/2012 11:37 AM, Stephen Gallagher wrote:
> On Thu, 2012-01-05 at 11:35 -0900, Erinn Looney-Triggs wrote:
>> I am trying to solve an issue that seems like it should be obvious but
>> is not, to me at least.
>>
>> I am trying to allow a user to log into a single host, via GDM. I have
>> configured a HBAC rule that allows access to the host from the host
>> (actually to the group with the host in it from the same group).
>> Unfortunately, logins are failing, what is more sssd is crashing when
>> this is tried (perhaps they didn't design for a monkey like me :).
>>
>> The only way that I can get logins to work is for it to be allowed from
>> any host, not from the host itself. So what, if any, are the tricks here
>> that I am missing?
>>
>> I will send in the sssd crashing bit, abrt doesn't seem to want to list
>> it even though it is is in /var/spool/abrt, so I get to monkey with it
>> some other way.
>>
>> This is on a RHEL 6.2 client, connected to a RHEL 6.2 server.
> 
> 
> Any chance you might be hitting
> https://bugzilla.redhat.com/show_bug.cgi?id=771706 ?
> 
> 
> 
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users at redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users

Yes that look about right, not able to confirm 100%, but that is
probably the issue.

Thanks,
-Erinn


-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 554 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20120105/12adb65e/attachment.sig>


More information about the Freeipa-users mailing list